Gara qabiyyee ijoo darbuu

Akkamitti Weerara Phishing irraa Of Eegdu

Phishing amma illee mala #1 accounts hataman ta'ee jira. Akkamitti phishing har'aa hojjetu, mallattoolee balaa ilaalluu qaban, fi ittisa qabatamaa dhugumaan weerara dhaabsiisu baradhu.

2026-04-14

TL;DR

  • Phishing sababii #1 account takeover ta'a — weerartuun marsaa credentials akka kennitan weebsaayitii sobaa irratti gowwoomsu.
  • Kits phishing har'aa fuulota seensaa pixel-perfect fakkaatanii fi koodii 2FA keessan yeroo qabatamaa keessa dabarsanii ergatu.
  • Hardware security keys (YubiKey, FIDO2) ittisa qofa kan dizaayiniidhaan phishing-proof ta'ee dha.
  • Password managers domain dogoggoraa irratti autofill gochuu didanii si eegu.
  • Credentials galchuu kee dura domain sirrii ta'e mirkaneessi, gonkumaa email keessa jiru link irraa hin seenin.

Phishing maal dha?

Phishing weerara social engineering kan weerartuun garagalcha weebsaayitii seera qabeessaa amanamaa uumu — yeroo baay'ee pixel-perfect — fi hantuutee akka credentials achi galchitu gowwoomsudha. Yeroo hantuutni form submit gootu battalumatti, weerartuun username, password, fi factor lammaffaa kamiyyuu qabatee account dhugaa sekondiiwwan keessa fayyadamuuf fudhata.

Jechi kun metaphor "fishing" hantuutotaaf nyaataan (yeroo baay'ee email) irraa dhufa. Qormaatni jijjiirame akka weerartuun yeroo baay'ee lakkoofsa phone (SMS phishing, ykn "smishing") fi bu'uura ogummaa fakkaatu fayyadaman cimsuu.

Maaliif phishing ammallee balaa #1 ta'ee jira

Account breach bal'aa har'aa baay'een hacking, password cabsuu, ykn encryption darbuun hin dabalatan. Nama password weebsaayitii sobaa keessatti galchu dabalatu. Phishing:

  • Gatii xiqqaa — weerartuun VPS fi domain spoofed tokko gatiin email miliyoona erguu danda'a
  • Gingiluuf ulfaataa — kits har'aa domains jijjiiru, hosting seera qabeessa fayyadamu, fi filters yeroo qabatamaa keessatti madaqsu
  • Bu'a qabeessa — namoonni security hubatan iyyuu yaalii xiyyeeffannaa qabu gaarii uumame (spear phishing) keessatti kufu
  • Bal'inaan hojjetamuu danda'u — phishing milkaa'aa tokkoo yeroo baay'ee tajaajila walitti hidhamoo kurmaatama karaa password irra deebi'anii fayyadamuun argama

2024 Verizon Data Breach Investigations Report akka argamsiisetti phishing breach hundaa keessaa %36 ol keessatti initial access vector ture — sababii kaan tokkichaa caalaa.

Phishing har'aa akkamitti hojjeta

Phishing email "mootii Nigerian" waggaa 2000moota caalatti guddateera. Weerara phishing har'aa yeroo baayyee:

1. Hawwata amanamaa

Yeroo baayyee email, barreeffama, ykn ergaa mari'ataa ariifachuu uumu ("Account kee ni to'atama"), aangoo ("garee nageenyaa Microsoft"), ykn hawwii beekuu ("namni tokko suura keessa si mallatteesse"). Spear-phishing kana caalatti bal'isee baldhina dhuunfaa LinkedIn, breach dumps, ykn walqunnamtii duraa irraa harkifame fayyadama.

2. Marsaa sobaa pixel-perfect

Weerartuun phishing kits off-the-shelf kan HTML, CSS, fi JavaScript marsaa xiyyeeffannoo garagalchu fayyadamu. Kits hedduun akka tajaajilatti (phishing-as-a-service) gurguramu, dashboard hojjetuu fi deeggarsa maamiltootaa wajjin.

3. Proxy yeroo qabatamaa 2FA tiif

Kutaan balaa: kits har'aa password kee qabachuu qofa miti. Akka proxy man-in-the-middle kan waan ati galchitu hunda — koodii TOTP kee dabalatee — sekondiiwwan keessa marsaa dhugaatti dabarsanii ergatan hojjetu, 2FA hedduu darbu. Tooftaan kun adversary-in-the-middle (AiTM) jedhamuun beekama fi meeshaalee akka Evilginx2 fi Modlishka keessatti fayyadama.

4. Session token hantuu

Proxy karaan yeroo authenticate gootan booda, weerartuun session cookie kee qabatee password jijjiirruu kee booda iyyuu seenee turuu danda'a. Kanaaf deebii phishing yeroo hunda active sessions balleessuu dabalata, password jijjiirruu qofa miti.

Maaltu dhugumaan phishing dhaabsa

Hardware security keys (FIDO2 / WebAuthn)

Kun ramaddii ittisaa qofa kan dizaayiniidhaan phishing-proof ta'ee dha. FIDO2 key waliin yeroo seentu, key kee domain sirrii marsaa authentication gaafatu cryptographically mirkaneessa. Marsaan sobaa — ijaan akkam mudaa ta'e iyyuu — domain adda ta'e qaba, kanaaf key deebii kennuu ni dida. Cryptographic handshake salphaan hin xumuramtu.

Google 2017 keessa hojjettota 85,000+ hundaaf YubiKeys dirqisiisee fi waggaa sana booda company accounts irratti weerara phishing milkaa'aa dhabamuu gabaase.

Passkeys

Passkeys guddina maamiltootaaf mijatu FIDO2 ti. Cryptography domain-bound tokkicha fayyadamanii iOS, Android, macOS, fi Windows keessa ijaaraman. Marsaan ati fayyadamtu passkeys deeggare yoo ta'e, tokko enable gochuun account sana phishing-proof taasisa.

Password managers

Password manager sarara ittisaa lammaffaa keetii sababni isaas domain sirrii credentials itti ol-kaa'aman qofa irratti autofill godhaniif. paypaI.com (capital I) mannaa paypal.com irratti yoo buute, manager kee calaqqisiisee form guutuu ni dida. Diduun sun akeekkachiisa sagalee guddaa wanti tokko dogoggoraa akka ta'e.

Email fi DNS gingiluu

Email providers DMARC, SPF, fi DKIM fayyadamanii teessuma ergaa sobaa adda baasu. Providers har'aa baay'een yaalii ifa ta'an qaban, garuu weerar xiyyeeffannaa qaban ammallee darbu. Mail client kee keessa "report phishing" buttons enable godhii akka filters fooyya'uuf gargaarte.

Mallattoolee balaa ilaalluu qaban

Ergaa akka seentu, mirkaneessitu, ykn ariifachuudhaan akka sochoostu si gaafatu yeroo argatu:

  • Ariifachuu fi doorsisuu — "Account kee sa'aatii 24 keessa ni cufama"
  • Nageenya waliigalaa — "Maamila kabajamaa" maqaa kee mannaa
  • Domains fakkaatoopaypaI.com, app1e.com, secure-microsoft-login.net
  • Hidhannoo hin eegamne — keessumaa faayilii .zip, .html, ykn .pdf ilaaluuf akka seentu si gaafatan
  • Dogoggora caaslugaa ykn formatting — dhaabbatni guddaan email isaanii ni to'atan
  • Link wal hin gitu — link irratti darbii bakka dhaqamuu fi barreeffamni wal gituu isaanii ilaali

Wanti kamiyyuu dogoggoraa yoo itti dhaga'ame, email cufi. Marsaa sana harkaan deemi. Dhimmi dhugaa yoo jiraate, adeemsa idilee keetti yeroo seentu ni argita.

Keessa kuftee jette yoo ta'e maal godhuu qabda

Dafanii socho'i — saffisni barbaachisaa sababni isaas weerartuun credentials daqiiqoota keessatti fayyadamuu jalqabaniiruuf.

  1. Password battalumatti jijjiiri meeshaa biraa irratti (fakkeenyaaf, laptop irratti keessa kufte yoo ta'e, phone kee fayyadami)
  2. Active sessions hunda balleessi account settings keessa — kun nama session tokens hatame fayyadamee yeroo ammaa keessa jiru hunda ariiba
  3. 2FA enable godhi duraan hin jiraanne yoo ta'e, hardware key ykn passkey danda'ame yoo ta'e fayyadami
  4. Sochiiwwan eeyyama malee raawwataman ilaali — email ergame, seensaa dhiyoo, billing jijjiirraa, labsii forwarding haaraa
  5. Dhaabbata miidhame beeksisi account maallaqaa ykn hojii yoo ta'e
  6. Accounts biroo password tokko fayyadaman ilaali — password irra deebi'anii hin fayyadamne hubannoo yoo qabdu iyyuu, ilaali

Bu'uura waliigalaa

Phishing sababni isaas teknooloojii darbuun nama xiyyeeffatuun ni dagaaga. Ittisni gaarii sadaffaa walitti makama: password managers (domain dogoggoraa irratti autofill gochuu didan), phishing-resistant 2FA (hardware keys ykn passkeys domain dhugootti hidhataman), fi shakkii fayya qabeessa (gonkumaa email link irraa hin seenin).

Account kee barbaachisoo hunda irratti — email kee — duraan sadaffaan hunda enable godhi. Achii jalqabee, jireenya dijitaalii kee hafan haala barbaachisaatiin nagaan ta'a.

Akkamitti Phishing irraa Of Eegdu

Tarreeffama qormaataa qabatamaa fi tartiiba qabu accounts kee weerara phishing irraa cimsuu.

  1. Password manager fayyadami:Password manager amanamaa (1Password, Bitwarden, Proton Pass) install godhiitii credentials autofill akka godhu eeyyami. Domain fakkaatan irratti autofill gochuu ni dida, phishing detector ol-ijaarame si kenna.
  2. Phishing-resistant 2FA enable godhi:FIDO2 hardware key (YubiKey, Google Titan) ykn passkey accounts barbaachisoo kee irratti dabali — email jalqaba, sana booda banking, cloud storage, fi password manager. Kun mala 2FA qofa kan dhugumaan phishing har'aa dhaabsudha.
  3. Gonkumaa email links irraa hin seenin:Email akka seentu si gaafatu yoo argate, email sana cufi marsaadhaan bookmark ykn URL galchuudhaan deemi. Link email keessa jiru clone mudaa ta'uu danda'a; bookmark browser kee keessa jiru garuu miti.
  4. Galchuu kee dura domain sirrii ta'e ilaali:Password kamiyyuu galchuu dura, URL guutuu address bar keessa ilaali. https, qormaata sirrii, fi subdomain dabalataa kan paypal.com.secure-login.net fakkaatu akka hin jirre ilaali.
  5. Gabaasii fi itti fufi:Yaala phishing email provider kee irratti gabaasi (baay'een "Report phishing" button qabu). Sana booda guyyaa kee itti fufi — phishing keessatti kuftee qofa balaa ta'a, hubannoon garuu dhaaba lolaatii irra caalaa.

Frequently Asked Questions

Related Articles

What Is 2fa

Privacy Checklist

Encrypted Email